ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to prevent attacks towards script-driven sites through the use of security rules which contain certain expressions. This way, the firewall can prevent hacking and spamming attempts and shield even sites that aren't updated on a regular basis. For instance, a number of unsuccessful login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script shall trigger certain rules, so ModSecurity shall block these activities the instant it identifies them. The firewall is quite efficient as it tracks the whole HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It also keeps a very comprehensive log of all attack attempts that contains more information than typical Apache logs, so you can later analyze the data and take extra measures to enhance the security of your sites if necessary.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting packages, so your web applications will be protected against destructive attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you'll be able to stop it through the respective part of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall discover within Hepsia are quite detailed and offer info about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, and so forth. We employ a group of commercial rules that are often updated, but sometimes our administrators include custom rules as well in order to better protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web program you set up within your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is provided with all our hosting plans and is activated by default for any domain and subdomain which you add or create via your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section within Hepsia where not only can you activate or deactivate it fully, but you may also enable a passive mode, so the firewall will not stop anything, but it will still maintain a record of potential attacks. This requires only a click and you'll be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, and so on. The firewall uses 2 sets of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one that our administrators update personally as to respond to newly discovered threats at the earliest opportunity.

ModSecurity in VPS Web Hosting

All virtual private servers which are set up with the Hepsia Control Panel feature ModSecurity. The firewall is set up and activated by default for all domains that are hosted on the server, so there won't be anything special which you'll have to do to protect your Internet sites. It'll take you just a mouse click to stop ModSecurity if necessary or to switch on its passive mode so that it records what goes on without taking any steps to stop intrusions. You shall be able to see the logs generated in passive or active mode from the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall used to tackle it, etcetera. We employ a combination of commercial and custom rules so as to make sure that ModSecurity shall prevent as many risks as possible, hence boosting the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any application that you upload or install will be properly secured from the very beginning and you won't have to bother about common attacks or vulnerabilities. An individual section inside Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you shall find in the logs can enable you to to secure your websites better - the IP address an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this information, you can see if a site needs an update, if you should block IPs from accessing your server, and so on. On top of the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones too when they come across a new threat which is not yet included in the commercial bundle.